diff options
| author | Martin Kosek <mkosek@redhat.com> | 2013-01-16 10:05:43 +0100 |
|---|---|---|
| committer | Rob Crittenden <rcritten@redhat.com> | 2013-01-21 12:13:09 -0500 |
| commit | 51f9ed0239e0bb59a96e9de18e99b10a0dbe9edd (patch) | |
| tree | 05c4d6394dd027722cff387eb2789f32ace6ec48 /ipaserver/install/cainstance.py | |
| parent | 5d919c9556345a8c230dbd3c43b52a0b9f066773 (diff) | |
| download | freeipa.git-51f9ed0239e0bb59a96e9de18e99b10a0dbe9edd.tar.gz freeipa.git-51f9ed0239e0bb59a96e9de18e99b10a0dbe9edd.tar.xz freeipa.git-51f9ed0239e0bb59a96e9de18e99b10a0dbe9edd.zip | |
Installer should not connect to 127.0.0.1
IPA installer sometimes tries to connect to the Directory Server
via loopback address 127.0.0.1. However, the Directory Server on
pure IPv6 systems may not be listening on this address. This address
may not even be available.
Rather use the FQDN of the server when connecting to the DS to fix
this issue and make the connection consistent ldapmodify calls which
also use FQDN instead of IP address.
https://fedorahosted.org/freeipa/ticket/3355
Diffstat (limited to 'ipaserver/install/cainstance.py')
| -rw-r--r-- | ipaserver/install/cainstance.py | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ipaserver/install/cainstance.py b/ipaserver/install/cainstance.py index 86c075c8..3d028a6a 100644 --- a/ipaserver/install/cainstance.py +++ b/ipaserver/install/cainstance.py @@ -378,7 +378,7 @@ class CADSInstance(service.Service): dsdb.create_pin_file() def enable_ssl(self): - conn = ipaldap.IPAdmin("127.0.0.1", port=DEFAULT_DSPORT) + conn = ipaldap.IPAdmin(self.fqdn, port=DEFAULT_DSPORT) conn.simple_bind_s(DN(('cn', 'directory manager')), self.dm_password) mod = [(ldap.MOD_REPLACE, "nsSSLClientAuth", "allowed"), |